Veracode Vulnerability DatabaseVERACODE:19004Privilege Escalation
0.001 Low
EPSS
Percentile
26.9%
Linux kernel is vulnerable to privilege escalation vulnerability. This occurs in the 32-bit compatibility layer of the ioctl handling code of the v4l2 video driver in the Linux kernel. An attacker to overwrite a kernel memory from an unprivileged userspace process causing a privilege escalation.
References
access.redhat.com/articles/3431591
access.redhat.com/errata/RHSA-2018:0676
access.redhat.com/errata/RHSA-2018:1062
access.redhat.com/errata/RHSA-2018:1130
access.redhat.com/errata/RHSA-2018:1170
access.redhat.com/errata/RHSA-2018:1319
access.redhat.com/errata/RHSA-2018:2948
access.redhat.com/security/cve/CVE-2017-5754
access.redhat.com/security/updates/classification/#important
access.redhat.com/security/vulnerabilities/pop_ss
access.redhat.com/security/vulnerabilities/speculativeexecution
bugzilla.redhat.com/show_bug.cgi?id=1519781
help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0
lists.debian.org/debian-lts-announce/2018/05/msg00000.html
source.android.com/security/bulletin/pixel/2017-12-01
www.debian.org/security/2018/dsa-4120
www.debian.org/security/2018/dsa-4187
Related
